Section: .. / linux / security /
| /// File Name: |
syscalltrack-0.71.tar.gz |
Description:
|
Syscall Tracker is a very powerful tool for Linux 2.2 and 2.4 which allows you to write rules to track system calls. It includes a kernel module plus a userspace applications. Currently only logging the invocation is supported, but in the future, you will be able to fail the system call (i.e. force it to return some error code), or suspend the process executing it. Allows you find out info that is hard to find, for instance to determine which process touched a certain file.
| | Homepage: | http://syscalltrack.sourceforge.net | | Changes: | Support was added for constants when specifying matching rules, for example, O_RDONLY, O_EXCL, and friends for open(2). Support was added for octal/hex numbers in filter expressions. Assorted internal cleanups, code refactoring, bugfixes, and memory leak plugs were done. | | File Size: | 248656 | | Last Modified: | Jun 3 00:26:20 2002 |
| MD5 Checksum: | 5541a2534f5976c0cf6b8469b82fa032 |
|
| /// File Name: |
syscalltrack-0.74.tar.gz |
Description:
|
Syscall Tracker is a very powerful tool for Linux 2.2 and 2.4 which allows you to write rules to track system calls. It includes a kernel module plus a userspace applications. Currently only logging the invocation is supported, but in the future, you will be able to fail the system call (i.e. force it to return some error code), or suspend the process executing it. Allows you find out info that is hard to find, for instance to determine which process touched a certain file.
| | Homepage: | http://syscalltrack.sourceforge.net | | Changes: | Now supports over 100 system calls! Includes infrastructure support for 64 bit system call parameters, such as long long and loff_t. This release also fixes bugs in various areas. This release has been extensively tested on 2.4 kernels. It should work on 2.5 kernels. It does not work on 2.2 kernels. | | File Size: | 404477 | | Last Modified: | Sep 13 07:44:27 2002 |
| MD5 Checksum: | adf2af846cf755cdc62d61f30fbf1f2a |
|
| /// File Name: |
Sysctl.sh |
Description:
|
Using the sysctl support in linux to enhance a system security against outside attacks. Includes a script to optimize these settings by echoing values to /proc/sys/net/ipv4/*, turning on kernel security features which lessen the effect of SYN floods, smurf attacks, and turn on source validation by reversed path to add more protection against spoofed packets. Tested on linux 2.2.x.
| | Author: | Spender | | File Size: | 6357 | | Last Modified: | Jun 19 01:21:13 2000 |
| MD5 Checksum: | 489208bede266aac78116d80abaf9d01 |
|
| /// File Name: |
sysmask-1.02.tgz |
Description:
|
Sysmask is a security package for Linux systems that can prevent arbitrary malicious codes from causing permanent damage. It protects the system against daemon exploits and user accounts against viruses and worms, whether known or unknown, without requiring the recompilation of existing software.
| | Author: | XIAO Gang | | Homepage: | http://wims.unice.fr/sysmask/doc/index.html | | File Size: | 176924 | | Last Modified: | Aug 24 03:30:02 2005 |
| MD5 Checksum: | b4c9d16ad0aa5ead3e5bb1e4ff383db3 |
|
| /// File Name: |
sysmask-1.04.tgz |
Description:
|
Sysmask is a security package for Linux systems that can prevent arbitrary malicious codes from causing permanent damage. It protects the system against daemon exploits and user accounts against viruses and worms, whether known or unknown, without requiring the recompilation of existing software.
| | Author: | XIAO Gang | | Homepage: | http://wims.unice.fr/sysmask/doc/index.html | | Changes: | Some minor fixes and improvements. | | File Size: | 177317 | | Last Modified: | Aug 26 02:05:33 2005 |
| MD5 Checksum: | 180cca0394264f471ca36e24b8e5197b |
|
| /// File Name: |
sysmask-1.06.tgz |
Description:
|
Sysmask is a security package for Linux systems that can prevent arbitrary malicious codes from causing permanent damage. It protects the system against daemon exploits and user accounts against viruses and worms, whether known or unknown, without requiring the recompilation of existing software.
| | Author: | XIAO Gang | | Homepage: | http://wims.unice.fr/sysmask/doc/index.html | | Changes: | Added skype configuration. Some minor fixes and improvements. | | File Size: | 183778 | | Last Modified: | Feb 8 00:42:48 2006 |
| MD5 Checksum: | 0b508e7103f184159c54d7e5cfd7d77a |
|
| /// File Name: |
sysmask-1.08.tgz |
Description:
|
Sysmask is a security package for Linux systems that can prevent arbitrary malicious codes from causing permanent damage. It protects the system against daemon exploits and user accounts against viruses and worms, whether known or unknown, without requiring the recompilation of existing software.
| | Author: | XIAO Gang | | Homepage: | http://wims.unice.fr/sysmask/doc/index.html | | Changes: | Kernel patch update for 2.6.17.13 and 2.4.33.3. Fixed malformed kernel patch problem. | | File Size: | 226076 | | Last Modified: | Oct 4 23:56:57 2006 |
| MD5 Checksum: | 065a77e7fef6c08ad0d590c084610ab2 |
|
| /// File Name: |
tcpspy-1.1.tar.gz |
Description:
|
tcpspy is a linux administrator's tool that logs information about incoming and outgoing TCP/IP connections: local address, remote address and, probably the most useful feature, the user name. The current version allows you to include and exclude certain users from logging - this may be useful if you suspect one of the users on your system is up to no good but do not want to violate the privacy of the other users.
| | Author: | Tim J Robbins | | Homepage: | http://box3n.gumbynet.org/~fyre/software | | File Size: | 5995 | | Last Modified: | Nov 13 14:55:49 2000 |
| MD5 Checksum: | bc76149841ec3fa415839855d27a181a |
|
| /// File Name: |
tcpspy-1.4.tar.gz |
Description:
|
tcpspy is a linux administrator's tool that logs information about incoming and outgoing TCP/IP connections: local address, remote address and, probably the most useful feature, the user name. The current version allows you to include and exclude certain users from logging - this may be useful if you suspect one of the users on your system is up to no good but do not want to violate the privacy of the other users.
| | Author: | Tim J Robbins | | Homepage: | http://box3n.gumbynet.org/~fyre/software | | Changes: | Can now log the filename of the executable that created or accepted connections. Assorted bug fixes and code cleanups. | | File Size: | 11051 | | Last Modified: | Dec 7 13:41:09 2000 |
| MD5 Checksum: | 320900fd99bc47d1f81a86cd78e934e7 |
|
| /// File Name: |
tcpspy-1.5.tar.gz |
Description:
|
tcpspy is a linux administrator's tool that logs information about incoming and outgoing TCP/IP connections: local address, remote address and, probably the most useful feature, the user name. The current version allows you to include and exclude certain users from logging - this may be useful if you suspect one of the users on your system is up to no good but do not want to violate the privacy of the other users.
| | Author: | Tim J Robbins | | Homepage: | http://box3n.gumbynet.org/~fyre/software | | Changes: | Bug fixes. | | File Size: | 13875 | | Last Modified: | Mar 16 20:51:16 2001 |
| MD5 Checksum: | fa5d567c487fa7f63b73fd15e2f6eddf |
|
| /// File Name: |
tcpspy-1.6.tar.gz |
Description:
|
tcpspy is a linux administrator's tool that logs information about incoming and outgoing TCP/IP connections: local address, remote address and, probably the most useful feature, the user name. The current version allows you to include and exclude certain users from logging - this may be useful if you suspect one of the users on your system is up to no good but do not want to violate the privacy of the other users.
| | Author: | Tim J Robbins | | Homepage: | http://box3n.gumbynet.org/~fyre/software | | Changes: | Rules can now be read from a file. Also includes code cleanup and optimizations. | | File Size: | 14215 | | Last Modified: | Apr 27 16:49:42 2001 |
| MD5 Checksum: | a8338ef64c32e16054457b47c91b9a49 |
|
| /// File Name: |
tcpspy-1.7.tar.gz |
Description:
|
tcpspy is a linux administrator's tool that logs information about incoming and outgoing TCP/IP connections: local address, remote address and, probably the most useful feature, the user name. The current version allows you to include and exclude certain users from logging - this may be useful if you suspect one of the users on your system is up to no good but do not want to violate the privacy of the other users.
| | Author: | Tim J Robbins | | Homepage: | http://box3n.gumbynet.org/~fyre/software | | Changes: | The syslog facility is no longer hardcoded, warnings are issued when running slowly, documentation updates, and a few minor bugfixes. | | File Size: | 14813 | | Last Modified: | Jun 1 19:55:18 2001 |
| MD5 Checksum: | 8bd8f850057990aacf105ae3b5b20127 |
|
| /// File Name: |
toby.c |
Description:
|
Toby.c is a Linux LKM which intercepts, logs, and stops the setuid, setreuid, and setresuid syscalls from users.
| | Author: | Sacrine | | Homepage: | http://netric.org | | File Size: | 3973 | | Last Modified: | Jan 9 04:03:17 2003 |
| MD5 Checksum: | abea47c5169b3e9846363fa5c0e0cde8 |
|
| /// File Name: |
umbrella-0.5.1.tar.bz2 |
Description:
|
The Umbrella security mechanism implements a combination of process-based Mandatory Access Control (MAC) and authentication of files through Digital Signed Binaries (DSB) for Linux based consumer electronics devices ranging from mobile phones to settop boxes. Umbrella is implemented on top of the Linux Security Modules (LSM) framework. The MAC scheme is enforced by a set of restrictions on each process. This policy is distributed with a binary in form of execute restrictions (in the file signature) and within the program, where the developer has the opportunity of making a restricted fork.
| | Homepage: | http://umbrella.sourceforge.net/ | | Changes: | Fixed a memory allocation bug. | | File Size: | 28397 | | Last Modified: | Dec 11 15:21:11 2004 |
| MD5 Checksum: | 23c9015571cf975a65338feed9e3ba8b |
|
| /// File Name: |
umbrella-0.6.tar.bz2 |
Description:
|
The Umbrella security mechanism implements a combination of process-based Mandatory Access Control (MAC) and authentication of files through Digital Signed Binaries (DSB) for Linux based consumer electronics devices ranging from mobile phones to settop boxes. Umbrella is implemented on top of the Linux Security Modules (LSM) framework. The MAC scheme is enforced by a set of restrictions on each process. This policy is distributed with a binary in form of execute restrictions (in the file signature) and within the program, where the developer has the opportunity of making a restricted fork.
| | Homepage: | http://umbrella.sourceforge.net/ | | Changes: | Complete integration with GNU Privacy Guard to authenticate binaries. Hash tables for storing restrictions is replaced by the new, fast and simple FSR data structure, that mimics the 'dentry' structs in the kernel. The Umbrella system call is eliminated and completely replaced by a /proc filesystem interface. The Umbrella code is now completely independent of all architectures and kernel subversions. | | File Size: | 166919 | | Last Modified: | Mar 22 01:12:59 2005 |
| MD5 Checksum: | 9cebc8b0fdf122d8b1079c29ec3a5d18 |
|
| /// File Name: |
umbrella-0.7.tar.bz |
Description:
|
The Umbrella security mechanism implements a combination of process-based Mandatory Access Control (MAC) and authentication of files through Digital Signed Binaries (DSB) for Linux based consumer electronics devices ranging from mobile phones to settop boxes. Umbrella is implemented on top of the Linux Security Modules (LSM) framework. The MAC scheme is enforced by a set of restrictions on each process. This policy is distributed with a binary in form of execute restrictions (in the file signature) and within the program, where the developer has the opportunity of making a restricted fork.
| | Homepage: | http://umbrella.sourceforge.net/ | | Changes: | Various fixes. | | File Size: | 176658 | | Last Modified: | Jun 1 02:57:38 2005 |
| MD5 Checksum: | c260b14578e7b8f577e71b0067696cbc |
|
| /// File Name: |
viagra.pl |
Description:
|
Viagra.pl is a linux hardening script which implements the /proc suggestions in the article available at http://www.securityfocus.com/infocus/1711. Disables ICMP ping replies, broadcast replies, source routed packets, packet spoofing protection, ignores ICMP redirects, packet forwarding, changes ip fragmentation buffers, allowed local sockets, rate limit ICMP replies, reject new ARP entries, change arp timeouts, enables syncookies, and more.
| | Author: | Luke Macken | | File Size: | 11150 | | Last Modified: | Dec 15 01:07:09 2003 |
| MD5 Checksum: | 0cafdbb608cbd0c630175d54e4e1db13 |
|
| /// File Name: |
virtualftpd.tgz |
Description:
|
Virtual FTPD v6.4 is a secure FTP daemon which is derived from the OpenBSD ftp daemon and can allows virtual FTP accounts which do not have an /etc/passwd entry.
| | Author: | Michael Saarna | | Homepage: | http://startuplinux.com/software.html | | File Size: | 74931 | | Last Modified: | Jul 24 15:37:32 2000 |
| MD5 Checksum: | 946726205644f0b6a1b6f8c52710e9dd |
|
| /// File Name: |
vlogger-2.1.1.tar.gz |
Description:
|
vlogger is a new release from THC that logs keystrokes on a Linux box. It logs all console, serial, and remote sessions, and does not use syscall modification. It allows for both local and remote logging methods.
| | Author: | rd | | Homepage: | http://www.thc.org | | File Size: | 27206 | | Last Modified: | Dec 23 04:27:37 2003 |
| MD5 Checksum: | d6b86be186c6ed1992142a5f2285f72f |
|
| /// File Name: |
vma_rw_chk-1.0.tar.gz |
Description:
|
Vma_rw_chk is a small security module for Linux-2.2.19 which prevents most exploits from working by wrapping execve() and checking to see that the caller does not call from a writable memory segment. Since most local (and many remote) exploits call execve() or similar from the stack (and environment, which is also placed on the stack), which is writable, it prevents most standard exploits from working.
| | Author: | Proton | | Homepage: | http://www.energymech.net/users/proton | | File Size: | 2509 | | Last Modified: | Oct 4 02:31:32 2001 |
| MD5 Checksum: | a667768b03f30fbc2d1d31bd97eaecf0 |
|
| /// File Name: |
xNBTscan-1.0.tar.gz |
Description:
|
xNBTScan is a GTK 2 interface to the NBTscan program, useful for locating netbios services on a network / penetration testing windows machines from Linux. It supports all options available in NBTscan v1.0.3.
| | Author: | Daten | | Homepage: | http://md2600.dyndns.org/~daten | | File Size: | 15793 | | Last Modified: | Jun 6 01:27:20 2002 |
| MD5 Checksum: | 8b3ae02c00697e196b14d4e35236dd38 |
|
| /// File Name: |
zeppoo-0.0.1.tar.gz |
Description:
|
Zeppoo is a tool that attempts to detect if a rootkit is installed on your system. It also makes it possible to detect hidden tasks, modules, syscalls, some corrupted symbols and also hidden connections. Written in Python.
| | Homepage: | http://www.zeppoo.net | | File Size: | 21430 | | Last Modified: | Mar 2 22:46:05 2006 |
| MD5 Checksum: | 25a91c8b134988ff4319ab0c667f72d3 |
|
| /// File Name: |
zeppoo-0.0.3.tar.gz |
Description:
|
Zeppoo is a tool that attempts to detect if a rootkit is installed on your system. It also makes it possible to detect hidden tasks, modules, syscalls, some corrupted symbols and also hidden connections.
| | Homepage: | http://www.zeppoo.net | | Changes: | Rewritten in C. | | File Size: | 15569 | | Last Modified: | May 22 02:15:45 2006 |
| MD5 Checksum: | 4983770db082ff67978de475dd92d53a |
|
| /// File Name: |
zeppoo-0.0.4.tar.gz |
Description:
|
Zeppoo is a tool that attempts to detect if a rootkit is installed on your system. It also makes it possible to detect hidden tasks, modules, syscalls, some corrupted symbols and also hidden connections.
| | Homepage: | http://www.zeppoo.net | | Changes: | Support for Redhat, Ubuntu added, support for amd64 architecture, various bugfixes. | | File Size: | 41276 | | Last Modified: | Nov 3 17:59:38 2006 |
| MD5 Checksum: | 15378e27d08dc883354748d2f1a177d2 |
|
| /// File Name: |
zm-0.9.16.tar.gz |
Description:
|
ZoneMinder is a suite of applications intended for use in video camera security applications, including theft prevention and child or family member monitoring. It supports capture, analysis, recording, and monitoring of video data coming from one or more cameras attached to a Linux system. It also features a user-friendly Web interface which allows viewing, archival, review, and deletion of images and movies captured by the cameras. The image analysis system is highly configurable, permitting retention of specific events, while eliminating false positives. ZoneMinder supports both directly connected and network cameras and is built around the definition of a set of individual 'zones' of varying sensitivity and functionality for each camera. This allows the elimination of regions which should be ignored or the definition of areas which will alarm if various thresholds are exceeded in conjunction with other zones. All management, control, and other functions are supported through the Web interface.
| | Author: | Philip Coombes | | Homepage: | http://www.zoneminder.com | | File Size: | 349982 | | Last Modified: | Dec 18 00:20:01 2003 |
| MD5 Checksum: | 63616a18a657766bea4b3a8eaf262f56 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
